{"ip":"45.156.129.172","total_events":51,"verdict":{"verdict":"scanner","label":"Recognized scanner","detail":"bitsight","confidence":"high","network_type":null,"why":["Source IP is in a known scanner range (bitsight).","Known research and commercial scanners are labelled as such, not as threats."]},"first_seen":"2026-02-19T04:01:11","last_seen":"2026-07-12T08:20:38","events_24h":1,"events_7d":13,"geo":{"country_code":"PT","country_name":"Portugal","region":"","city":"","lat":38.7057,"lon":-9.1359,"asn":211680,"org":"Sistemas Informaticos, S.A."},"source_domain":"sh-chi-us-gp6-wk133a.internet-census.org","known_scanners":["bitsight","Internet Census"],"scanner_tag":{"key":"internet-census","label":"Internet Census","category":"research","url":"https://internet-census.org/"},"cve_matches":[{"cve_id":"CVE-2023-1892","title":"Sidekiq < 7.0.8 - Cross-Site Scripting","severity":"critical","actively_exploited":false,"match_field":"url_path","matched_pattern":"/metrics"},{"cve_id":"CVE-2020-9484","title":"Apache Tomcat Remote Command Execution","severity":"high","actively_exploited":false,"match_field":"url_path","matched_pattern":"/index.jsp"},{"cve_id":"CVE-2021-28169","title":"Eclipse Jetty ConcatServlet - Information Disclosure","severity":"medium","actively_exploited":false,"match_field":"url_path","matched_pattern":"/static"},{"cve_id":"CVE-2021-31682","title":"WebCTRL OEM <= 6.5 - Cross-Site Scripting","severity":"medium","actively_exploited":false,"match_field":"url_path","matched_pattern":"/index.jsp"},{"cve_id":"CVE-2021-37598","title":"WP Cerber < 8.9.3 - Broken Access Control","severity":"medium","actively_exploited":false,"match_field":"url_path","matched_pattern":"/wp-json"},{"cve_id":"CVE-2021-40868","title":"Cloudron 6.2 Cross-Site Scripting","severity":"medium","actively_exploited":false,"match_field":"url_path","matched_pattern":"/login.html"},{"cve_id":"CVE-2025-2710","title":"Yonyou UFIDA ERP-NC V5.0 - Cross-Site Scripting","severity":"medium","actively_exploited":false,"match_field":"url_path","matched_pattern":"/index.jsp"}],"malware":[],"top_ports":[{"port":8080,"proto":"tcp","label":"HTTP-alt","count":10},{"port":9090,"proto":"tcp","label":"Prometheus","count":9},{"port":8282,"proto":"tcp","label":"","count":4},{"port":8008,"proto":"tcp","label":"HTTP-alt","count":3},{"port":502,"proto":"tcp","label":"","count":2},{"port":37777,"proto":"tcp","label":"","count":2},{"port":9002,"proto":"tcp","label":"","count":2},{"port":9191,"proto":"tcp","label":"","count":2},{"port":7860,"proto":"tcp","label":"","count":2},{"port":84,"proto":"tcp","label":"","count":2},{"port":2086,"proto":"tcp","label":"","count":2},{"port":6443,"proto":"tcp","label":"k8s API","count":1},{"port":8088,"proto":"tcp","label":"Hadoop","count":1},{"port":2083,"proto":"tcp","label":"","count":1},{"port":5357,"proto":"tcp","label":"","count":1}],"fingerprints":{"ssh_hassh":[],"tls_ja4":["t12i330500_5172cef6ed69_021165082e1c"],"tls_ja3":["02f32644e1b0655c19aaa3a2d6778b1e"],"ja4h":["ge11nn0400_88d30a62b7ad","ge11nn0600_b7414775fa12"]},"fingerprint_peers":{"t12i330500_5172cef6ed69_021165082e1c":236,"ge11nn0600_b7414775fa12":19,"ge11nn0400_88d30a62b7ad":6806},"user_agents":["Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36","Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36","kubectl/v1.12.0 (linux/amd64) kubernetes/0ed3388"],"timeline":[{"date":"2026-04-25","count":2},{"date":"2026-04-29","count":1},{"date":"2026-05-08","count":10},{"date":"2026-05-14","count":1},{"date":"2026-05-21","count":1},{"date":"2026-05-28","count":1},{"date":"2026-06-13","count":1},{"date":"2026-06-16","count":1},{"date":"2026-06-18","count":1},{"date":"2026-06-21","count":1},{"date":"2026-06-28","count":1},{"date":"2026-06-29","count":3},{"date":"2026-07-06","count":9},{"date":"2026-07-08","count":1},{"date":"2026-07-09","count":1},{"date":"2026-07-11","count":1},{"date":"2026-07-12","count":1}],"recent_events":[{"timestamp":"2026-07-12T08:20:38","port":8282,"proto":"tcp","app_proto":"","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept\":\"*/*\",\"accept-encoding\":\"gzip\",\"host\":\"<HONEYPOT>:8282\",\"user-agent\":\"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36\"}","body":"","sni":"","tls_cipher":"","tls_version":"","alpn":[],"url_path":"/","summary":"","payload_hex":"474554202f20485454502f312e310d0a486f73743a20<HONEYPOT>3a383238320d0a557365722d4167656e743a204d6f7a696c6c612f352e30204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f3132332e302e363331322e3836205361666172692f3533372e33360d0a4163636570743a202a2f2a0d0a4163636570742d456e636f64696e673a20677a69700d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36","community_id":"1:48Ukw1M4s+tnqQh8ejUVSZcoqoM=","ja3":"","session":"78bafd25-8b2d-4684-adcd-a3f8a3906f39","seq":1,"duration_ms":100,"bytes_in":180,"bytes_out":79},{"timestamp":"2026-07-11T08:37:32","port":8983,"proto":"tcp","app_proto":"tls","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept\":\"*/*\",\"accept-encoding\":\"gzip\",\"host\":\"<HONEYPOT>:8983\",\"user-agent\":\"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36\"}","body":"","sni":"","tls_cipher":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","tls_version":"TLSv1.2","alpn":[],"url_path":"/Telerik.Web.UI.WebResource.axd?type=rau","summary":"","payload_hex":"474554202f54656c6572696b2e5765622e55492e5765625265736f757263652e6178643f747970653d72617520485454502f312e310d0a486f73743a20<HONEYPOT>3a383938330d0a557365722d4167656e743a204d6f7a696c6c612f352e30204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f3132332e302e363331322e3836205361666172692f3533372e33360d0a4163636570743a202a2f2a0d0a4163636570742d456e636f64696e673a20677a69700d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36","community_id":"1:vgi/m7T+5ifGoc50h7NXyo4d+9s=","ja3":"02f32644e1b0655c19aaa3a2d6778b1e","session":"f356ca9b-1d9a-4fbb-89f3-8e3faab41cec","seq":1,"duration_ms":204,"bytes_in":219,"bytes_out":79},{"timestamp":"2026-07-09T14:10:26","port":8008,"proto":"tcp","app_proto":"","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept\":\"*/*\",\"accept-encoding\":\"gzip, deflate\",\"connection\":\"keep-alive\",\"host\":\"<HONEYPOT>:8008\",\"http-accept\":\"*/*\",\"user-agent\":\"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36\"}","body":"","sni":"","tls_cipher":"","tls_version":"","alpn":[],"url_path":"/favicon.ico","summary":"","payload_hex":"474554202f66617669636f6e2e69636f20485454502f312e310d0a486f73743a20<HONEYPOT>3a383030380d0a757365722d6167656e743a204d6f7a696c6c612f352e30204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f3132332e302e363331322e3836205361666172692f3533372e33360d0a4163636570742d456e636f64696e673a20677a69702c206465666c6174650d0a4163636570743a202a2f2a0d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a687474702d6163636570743a202a2f2a0d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36","community_id":"1:UNvcTMDNd/lqQPdjxEsKGpGjnxM=","ja3":"","session":"bb5ce21b-fbd2-4688-a74d-9bd7da1a9950","seq":1,"duration_ms":101,"bytes_in":240,"bytes_out":79},{"timestamp":"2026-07-08T19:14:09","port":5357,"proto":"tcp","app_proto":"","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept\":\"*/*\",\"accept-encoding\":\"gzip\",\"host\":\"<HONEYPOT>:5357\",\"user-agent\":\"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36\"}","body":"","sni":"","tls_cipher":"","tls_version":"","alpn":[],"url_path":"/","summary":"","payload_hex":"474554202f20485454502f312e310d0a486f73743a20<HONEYPOT>3a353335370d0a557365722d4167656e743a204d6f7a696c6c612f352e30204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f3132332e302e363331322e3836205361666172692f3533372e33360d0a4163636570743a202a2f2a0d0a4163636570742d456e636f64696e673a20677a69700d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36","community_id":"1:FsyNTFObNT+kHaw3ZQCTco9wK5k=","ja3":"","session":"e8191529-27f9-490a-bc56-d217a8df9799","seq":1,"duration_ms":100,"bytes_in":178,"bytes_out":79},{"timestamp":"2026-07-06T09:42:48","port":9090,"proto":"tcp","app_proto":"","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept\":\"*/*\",\"accept-encoding\":\"gzip\",\"host\":\"<HONEYPOT>:9090\",\"user-agent\":\"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36\"}","body":"","sni":"","tls_cipher":"","tls_version":"","alpn":[],"url_path":"/","summary":"","payload_hex":"474554202f20485454502f312e310d0a486f73743a20<HONEYPOT>3a393039300d0a557365722d4167656e743a204d6f7a696c6c612f352e30204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f3132332e302e363331322e3836205361666172692f3533372e33360d0a4163636570743a202a2f2a0d0a4163636570742d456e636f64696e673a20677a69700d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36","community_id":"1:V0jZ9nCCDg9LHf69Pl37c3VoPkw=","ja3":"","session":"454127bd-dddd-438c-842d-1ff6112dabb1","seq":1,"duration_ms":100,"bytes_in":180,"bytes_out":79},{"timestamp":"2026-07-06T09:42:48","port":9090,"proto":"tcp","app_proto":"","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept\":\"*/*\",\"accept-encoding\":\"gzip\",\"host\":\"<HONEYPOT>:9090\",\"user-agent\":\"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36\"}","body":"","sni":"","tls_cipher":"","tls_version":"","alpn":[],"url_path":"/","summary":"","payload_hex":"474554202f20485454502f312e310d0a486f73743a20<HONEYPOT>3a393039300d0a557365722d4167656e743a204d6f7a696c6c612f352e30204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f3132332e302e363331322e3836205361666172692f3533372e33360d0a4163636570743a202a2f2a0d0a4163636570742d456e636f64696e673a20677a69700d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36","community_id":"1:UstsHgtP1aUUbfTEwsLzI7bmaEM=","ja3":"","session":"d5240784-88da-4511-9bde-5d5619cc4b27","seq":1,"duration_ms":100,"bytes_in":180,"bytes_out":79},{"timestamp":"2026-07-06T09:42:48","port":9090,"proto":"tcp","app_proto":"","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept\":\"*/*\",\"accept-encoding\":\"gzip\",\"host\":\"<HONEYPOT>:9090\",\"user-agent\":\"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36\"}","body":"","sni":"","tls_cipher":"","tls_version":"","alpn":[],"url_path":"/admin/","summary":"","payload_hex":"474554202f61646d696e2f20485454502f312e310d0a486f73743a20<HONEYPOT>3a393039300d0a557365722d4167656e743a204d6f7a696c6c612f352e30204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f3132332e302e363331322e3836205361666172692f3533372e33360d0a4163636570743a202a2f2a0d0a4163636570742d456e636f64696e673a20677a69700d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36","community_id":"1:NJMq5b44CutGqcM1hFKLgkSXqvk=","ja3":"","session":"610d9e23-3f60-43d4-b7c7-d166a9f110c8","seq":1,"duration_ms":100,"bytes_in":186,"bytes_out":79},{"timestamp":"2026-07-06T09:42:47","port":9090,"proto":"tcp","app_proto":"","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept\":\"*/*\",\"accept-encoding\":\"gzip\",\"host\":\"<HONEYPOT>:9090\",\"user-agent\":\"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36\"}","body":"","sni":"","tls_cipher":"","tls_version":"","alpn":[],"url_path":"/favicon-32x32.png","summary":"","payload_hex":"474554202f66617669636f6e2d33327833322e706e6720485454502f312e310d0a486f73743a20<HONEYPOT>3a393039300d0a557365722d4167656e743a204d6f7a696c6c612f352e30204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f3132332e302e363331322e3836205361666172692f3533372e33360d0a4163636570743a202a2f2a0d0a4163636570742d456e636f64696e673a20677a69700d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36","community_id":"1:l9dADuwq/W/KaPhHIeuE47Emij0=","ja3":"","session":"dc380013-a444-4096-8c89-02d594fc7675","seq":1,"duration_ms":100,"bytes_in":197,"bytes_out":79},{"timestamp":"2026-07-06T09:42:25","port":9090,"proto":"tcp","app_proto":"","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept\":\"*/*\",\"accept-encoding\":\"gzip\",\"host\":\"<HONEYPOT>:9090\",\"user-agent\":\"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36\"}","body":"","sni":"","tls_cipher":"","tls_version":"","alpn":[],"url_path":"/","summary":"","payload_hex":"474554202f20485454502f312e310d0a486f73743a20<HONEYPOT>3a393039300d0a557365722d4167656e743a204d6f7a696c6c612f352e30204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f3132332e302e363331322e3836205361666172692f3533372e33360d0a4163636570743a202a2f2a0d0a4163636570742d456e636f64696e673a20677a69700d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36","community_id":"1:9Uzhs4uyYm2qcXnQbKYRsi7gQVw=","ja3":"","session":"5a25e000-79c8-426c-a7ac-9cba3f53fbfa","seq":1,"duration_ms":100,"bytes_in":180,"bytes_out":79},{"timestamp":"2026-07-06T09:42:24","port":9090,"proto":"tcp","app_proto":"","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept\":\"*/*\",\"accept-encoding\":\"gzip\",\"host\":\"<HONEYPOT>:9090\",\"user-agent\":\"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36\"}","body":"","sni":"","tls_cipher":"","tls_version":"","alpn":[],"url_path":"/favicon-32x32.png","summary":"","payload_hex":"474554202f66617669636f6e2d33327833322e706e6720485454502f312e310d0a486f73743a20<HONEYPOT>3a393039300d0a557365722d4167656e743a204d6f7a696c6c612f352e30204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f3132332e302e363331322e3836205361666172692f3533372e33360d0a4163636570743a202a2f2a0d0a4163636570742d456e636f64696e673a20677a69700d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36","community_id":"1:OGQFe54rhrZW5N/EMl5vkylbC7s=","ja3":"","session":"36818def-95d4-4233-8dba-213e352becd8","seq":1,"duration_ms":100,"bytes_in":197,"bytes_out":79}],"http_methods":[{"method":"GET","count":39}],"distinct_ports_total":22,"top_paths":[{"path":"/","count":19,"ports":13},{"path":"/favicon.ico","count":4,"ports":3},{"path":"/admin/","count":2,"ports":2},{"path":"/favicon-32x32.png","count":2,"ports":1},{"path":"/version","count":1,"ports":1},{"path":"/wp-json","count":1,"ports":1},{"path":"/metrics","count":1,"ports":1},{"path":"/cgi-bin/main.pl","count":1,"ports":1},{"path":"/index.jsp","count":1,"ports":1},{"path":"/status.php","count":1,"ports":1},{"path":"/partymgr/control/main","count":1,"ports":1},{"path":"/jasperserver/login.html","count":1,"ports":1},{"path":"/static/historypage.js","count":1,"ports":1},{"path":"/owncloud/status.php","count":1,"ports":1},{"path":"/ext-js/app/common/zld_product_spec.js","count":1,"ports":1}],"distinct_paths_total":16,"top_snis":[],"top_hosts":[],"top_alpns":[],"banners":[],"credentials":[],"header_profile":{"signature":["Accept","Accept-Encoding","Connection","Host","Http-Accept","User-Agent"],"representative":[{"name":"Accept","value":"*/*","notable":false},{"name":"Accept-Encoding","value":"gzip, deflate","notable":false},{"name":"Connection","value":"keep-alive","notable":false},{"name":"Host","value":"<HONEYPOT>:8008","notable":false},{"name":"Http-Accept","value":"*/*","notable":false},{"name":"User-Agent","value":"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36","notable":false}],"distinct_sets":2,"events_with_headers":10},"tags":[{"tag_id":"CVE-2023-1892","tag_type":"cve","title":"Sidekiq < 7.0.8 - Cross-Site Scripting","severity":"critical","actively_exploited":false,"match_field":"url_path","matched_pattern":"/metrics","reference_urls":["https://huntr.com/bounties/e35e5653-c429-4fb8-94a3-cbc123ae4777","https://github.com/sidekiq/sidekiq/commit/458fdf74176a9881478c48dc5cf0269107b22214","https://nvd.nist.gov/vuln/detail/CVE-2023-1892"]},{"tag_id":"CVE-2020-9484","tag_type":"cve","title":"Apache Tomcat Remote Command Execution","severity":"high","actively_exploited":false,"match_field":"url_path","matched_pattern":"/index.jsp","reference_urls":["http://packetstormsecurity.com/files/157924/Apache-Tomcat-CVE-2020-9484-Proof-Of-Concept.html","https://nvd.nist.gov/vuln/detail/CVE-2020-9484","https://lists.apache.org/thread.html/r77eae567ed829da9012cadb29af17f2df8fa23bf66faf88229857bb1%40%3Cannounce.tomcat.apache.org%3E","https://lists.apache.org/thread.html/rf70f53af27e04869bdac18b1fc14a3ee529e59eb12292c8791a77926@%3Cusers.tomcat.apache.org%3E","http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00057.html"]},{"tag_id":"CVE-2021-28169","tag_type":"cve","title":"Eclipse Jetty ConcatServlet - Information Disclosure","severity":"medium","actively_exploited":false,"match_field":"url_path","matched_pattern":"/static","reference_urls":["https://twitter.com/sec715/status/1406787963569065988","https://github.com/eclipse/jetty.project/security/advisories/GHSA-gwcr-j4wh-j3cq","https://lists.apache.org/thread.html/r2721aba31a8562639c4b937150897e24f78f747cdbda8641c0f659fe@%3Cusers.kafka.apache.org%3E","https://nvd.nist.gov/vuln/detail/CVE-2021-28169","https://lists.apache.org/thread.html/r04a4b4553a23aff26f42635a6ae388c3b162aab30a88d12e59d05168@%3Cjira.kafka.apache.org%3E"]},{"tag_id":"CVE-2021-31682","tag_type":"cve","title":"WebCTRL OEM <= 6.5 - Cross-Site Scripting","severity":"medium","actively_exploited":false,"match_field":"url_path","matched_pattern":"/index.jsp","reference_urls":["https://nvd.nist.gov/vuln/detail/CVE-2021-31682","https://github.com/3ndG4me/WebCTRL-OperatorLocale-Parameter-Reflected-XSS","https://www.automatedlogic.com/en/products-services/webctrl-building-automation-system/","http://packetstormsecurity.com/files/164707/WebCTRL-OEM-6.5-Cross-Site-Scripting.html","https://github.com/ARPSyndicate/cvemon"]},{"tag_id":"CVE-2021-37598","tag_type":"cve","title":"WP Cerber < 8.9.3 - Broken Access Control","severity":"medium","actively_exploited":false,"match_field":"url_path","matched_pattern":"/wp-json","reference_urls":["https://github.com/mandiant/Vulnerability-Disclosures/blob/master/FEYE-2021-0024/FEYE-2021-0024.md","https://nvd.nist.gov/vuln/detail/CVE-2021-37598"]},{"tag_id":"CVE-2021-40868","tag_type":"cve","title":"Cloudron 6.2 Cross-Site Scripting","severity":"medium","actively_exploited":false,"match_field":"url_path","matched_pattern":"/login.html","reference_urls":["https://packetstormsecurity.com/files/164255/Cloudron-6.2-Cross-Site-Scripting.html","https://nvd.nist.gov/vuln/detail/CVE-2021-40868","https://packetstormsecurity.com/files/164183/Cloudron-6.2-Cross-Site-Scripting.html","https://www.cloudron.io/","https://github.com/ARPSyndicate/cvemon"]},{"tag_id":"CVE-2025-2710","tag_type":"cve","title":"Yonyou UFIDA ERP-NC V5.0 - Cross-Site Scripting","severity":"medium","actively_exploited":false,"match_field":"url_path","matched_pattern":"/index.jsp","reference_urls":["https://github.com/Hebing123/cve/issues/85","https://nvd.nist.gov/vuln/detail/CVE-2025-2710"]}],"data_as_of":"2026-07-13T07:16:18.524090+00:00"}